Lucene search
Veracode Vulnerability DatabaseVERACODE:11842HistoryJan 15, 2019 - 9:08 a.m.
Path Traversal
2019-01-1509:08:20
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
EPSS
0.001
Percentile
41.5%
github.com/kubernetes/kubernetes is vulnerable to path traversal attacks. The attacks are possible because it does not validate the names of all object types ObjectMeta in BeforeCreate() before passing them to etcd to generate etcd key.
References
access.redhat.com/errata/RHSA-2015:1945
access.redhat.com/errata/RHSA-2015:1945
access.redhat.com/security/cve/CVE-2015-5305
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1273969
bugzilla.redhat.com/show_bug.cgi?id=1273969
rhn.redhat.com/errata/RHSA-2015-1945.html
Related
osv
osv
Directory traversal in k8s.io/kubernetes
2022-02-15 01:57:18
Directory Traversal in Kubernetes
2022-02-15 01:57:18
nvd
nvd
CVE-2015-5305
2015-11-06 18:59:00
veracode
veracode
Path Traversal
2017-04-28 02:45:06
github
github
Directory Traversal in Kubernetes
2022-02-15 01:57:18
cve
cve
CVE-2015-5305
2015-11-06 18:59:00
debiancve
debiancve
CVE-2015-5305
2015-11-06 18:59:00
redhat
redhat
(RHSA-2015:1945) Moderate: kubernetes security update
2015-10-27 18:30:55
cvelist
cvelist
CVE-2015-5305
2015-11-06 18:00:00
prion
prion
Directory traversal
2015-11-06 18:59:00
nessus
nessus
RHEL 7 : kubernetes (RHSA-2015:1945)
2018-12-04 00:00:00